vulnerability
Ubuntu: USN-7561-1 (CVE-2023-20584): AMD Microcode vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:M/Au:M/C:N/I:C/A:N) | Aug 13, 2024 | Jun 10, 2025 | Jul 28, 2025 |
Severity
4
CVSS
(AV:L/AC:M/Au:M/C:N/I:C/A:N)
Published
Aug 13, 2024
Added
Jun 10, 2025
Modified
Jul 28, 2025
Description
IOMMU improperly handles certain special address
ranges with invalid device table entries (DTEs), which may allow an attacker
with privileges and a compromised Hypervisor to
induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a
loss of guest integrity.
Solution
ubuntu-upgrade-amd64-microcode
References
- CVE-2023-20584
- https://attackerkb.com/topics/CVE-2023-20584
- UBUNTU-USN-7561-1
- URL-https://lore.kernel.org/all/[email protected]/
- URL-https://ubuntu.com/security/notices/USN-7561-1
- URL-https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html
- URL-https://www.cve.org/CVERecord?id=CVE-2023-20584
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.